| CVE | 漏洞描述 | 漏洞影响 | CVSS3.1基础得分 | 受影响的版本 | 受影响的仓库 | 修复链接 |
|---|---|---|---|---|---|---|
| CVE-2026-24792 | web_webview条件竞争漏洞 | 远程攻击者可造成任意代码执行 | 8.1 | OpenHarmony-v6.0-Release | web_webview | |
| CVE-2026-27648 | web_webview越界写漏洞 | 远程攻击者可造成任意代码执行 | 8.8 | OpenHarmony-v5.1.0-Release OpenHarmony-v6.0-Release OpenHarmony-v5.0.3-Release | web_webview | |
| CVE-2026-27781 | kernel_liteos_a整数溢出漏洞 | 本地攻击者可造成DOS | 3.3 | OpenHarmony-v5.0.3-Release OpenHarmony-v5.1.0-Release | kernel_liteos_a | |
| CVE-2026-28751 | filemanagement_storage_service输入校验漏洞 | 本地攻击者可造成DOS | 3.3 | OpenHarmony-v5.1.0-Release OpenHarmony-v6.0-Release OpenHarmony-v5.0.3-Release | filemanagement_storage_service | |
| CVE-2026-25110 | Sensors_medical_sensor空指针解引用漏洞 | 本地攻击者可造成DOS | 3.3 | OpenHarmony-v6.0-Release OpenHarmony-v5.0.3-Release | Sensors_medical_sensor |
| CVE | 严重程度 | CVSS 3.1得分 | 受影响的仓库 | 受影响的OpenHarmony版本 | 修复链接 |
|---|---|---|---|---|---|
| CVE-2026-25646 | 中危 | 6.3 | third_party_libpng | OpenHarmony-v6.0-Release | |
| CVE-2026-22693 | 中危 | 5.3 | third_party_harfbuzz | OpenHarmony-v6.0-Release | |
| CVE-2026-1757 | 中危 | 6.2 | third_party_libxml2 | OpenHarmony-v5.1.0-Release OpenHarmony-v6.0-Release OpenHarmony-v5.0.3-Release | |
| CVE-2026-0992 | 低危 | 2.9 | third_party_libxml2 | OpenHarmony-v5.1.0-Release OpenHarmony-v6.0-Release OpenHarmony-v5.0.3-Release | |
| CVE-2026-0990 | 中危 | 5.9 | third_party_libxml2 | OpenHarmony-v5.1.0-Release OpenHarmony-v6.0-Release OpenHarmony-v5.0.3-Release | |
| CVE-2026-0989 | 低危 | 3.7 | third_party_libxml2 | OpenHarmony-v5.1.0-Release OpenHarmony-v6.0-Release OpenHarmony-v5.0.3-Release | |
| CVE-2025-9230 | 高危 | 7.5 | third_party_openssl | OpenHarmony-v5.1.0-Release OpenHarmony-v6.0-Release OpenHarmony-v5.0.3-Release | |
| CVE-2025-8194 | 高危 | 7.5 | third_party_python | OpenHarmony-v6.0-Release | |
| CVE-2025-28164 | 无 | 尚未提供 | third_party_libpng | OpenHarmony-v6.0-Release | |
| CVE-2025-28162 | 无 | 尚未提供 | third_party_libpng | OpenHarmony-v6.0-Release |
| 对应维护版本 | 安全补丁修改方式参考链接 |
|---|---|
| 6.0.x | https://gitcode.com/openharmony/startup_init/pull/4492 |
| 5.1.0.x | https://gitcode.com/openharmony/startup_init/pull/4470 |
| 5.0.3.x |